发布日期:2011-12-21
更新日期:2011-12-22
受影响系统:
7-Technologies 7-Technologies Interactive Graphical SCADA System 9.0.0.11355
7-Technologies 7-Technologies Interactive Graphical SCADA System 9.0.0.11200
7-Technologies 7-Technologies Interactive Graphical SCADA System 9.0.0.11143
7-Technologies 7-Technologies Interactive Graphical SCADA System 9.0.0.11129
7-Technologies 7-Technologies Interactive Graphical SCADA System 9
7-Technologies 7-Technologies Interactive Graphical SCADA System 8
7-Technologies 7-Technologies Interactive Graphical SCADA System 7
描述:
--------------------------------------------------------------------------------
BUGTRAQ ID: 51157
CVE ID: CVE-2011-4537
7T Interactive Graphical SCADA System是用于控制和监控工业进程中的可编程逻辑控制器。
7T Interactive Graphical SCADA System在实现上存在缓冲区溢出漏洞,通过向端口12399/TCP或端口12397/TCP发送特制的报文,攻击者可利用此漏洞执行任意代码。
建议:
--------------------------------------------------------------------------------
厂商补丁:
7-Technologies
--------------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: